• KSII Transactions on Internet and Information Systems (TIIS)
• /
• v.12 no.2
• /
• pp.786-799
• /
• 2018

Recently, NFV has attracted attention as a next-generation network virtualization technology for hardware -independent and efficient utilization of resources. NFV is a technology that not only virtualize computing, server, storage, network resources based on cloud computing but also connect Multi-Tenant of VNFs, a software network function. Therefore, it is possible to reduce the cost for constructing a physical network and to construct a logical network quickly by using NFV. However, in NFV, when a new VNF is added to a running Tenant, authentication between VNFs is not performed. Because of this problem, it is impossible to identify the presence of Fake-VNF in the tenant. Such a problem can cause an access from malicious attacker to one of VNFs in tenant as well as other VNFs in the tenant, disabling the NFV environment. In this paper, we propose Auto-configurable Security Mechanism in NFV including authentication between tenant-internal VNFs, and enforcement mechanism of security policy for traffic control between VNFs. This proposal not only authenticate identification of VNF when the VNF is registered, but also apply the security policy automatically to prevent malicious behavior in the tenant. Therefore, we can establish an independent communication channel for VNFs and guarantee a secure NFV environment.

• Journal of Convergence Society for SMB
• /
• v.6 no.4
• /
• pp.131-136
• /
• 2016

By providing Asp or Client/Server method, most library system service proposal has a problem that is hard to manage and high cost across the software like high cost of hardware and software license, installation and distribution, purchasing cost, upgrade, customization, problem management etc. As proposed in order to solve this problem, smart library system that supporting multi-tenant environment realized on-demand mode that is a simple and little initial investment costs and possible for low cost IT service.

• The Journal of the Korea Contents Association
• /
• v.11 no.5
• /
• pp.93-103
• /
• 2011

Currently, the library system using the method of the software on the client / server and ASP by providing services in a manner of hardware and software, and cross-referencing, installation and deployment, Customization, Upgrade, risk management, and software licenses across the high-cost management of difficult and costly There is a problem. To solve these problems, SaaS based Integrated Management System for Digital Library, multi-tenant environments(SaaS Maturity Level 3 and above) as a key element in the implementation were developed. Therefore, almost no initial investment cost, easy, simple, low-cost IT services available on SaaS based software on-demand service model of how the system is implemented.

• International Journal of High-Rise Buildings
• /
• v.6 no.2
• /
• pp.149-163
• /
• 2017

With the intensification of urban development in Chinese cities, mixed land use in urban centers extends vertically into 3-D and expands its scale from a single building to commercial clusters. The multi-level pedestrian system in city centers also changed its role from one of traffic isolation to spatial integration, where transit nodes, street sidewalks, squares, building entrances, atriums, and corridors are interconnected, both horizontally and vertically, into a whole spatial system, within which pedestrian flows are guided and shopping facilities are arranged. This paper uses spatial configuration analysis of space syntax to examine the impacts of spatial patterns on movement distribution and the business performance of tenant mix in the multi-level commercial system of the Nanshan Commercial Cultural District in Shenzhen, China. The key objective is to better understand the interactions between the socio-economic variables and spatial design parameters of a shopping complex. The research findings point to the importance of multiplicity between syntactic variables and other spatial variables in influencing the pedestrian flows, business performance and tenant mix in highly complex commercial systems. Particularly noteworthy is the relationship between spatial accessibility measures and the location of escalators, and the ways in which individual commercial buildings are embedded into the overall spatial system. The study suggests that this may lead to the preliminary identification of the spatial qualities of effective vertical extensions of mixed land use in a high-density urban settings.

• Convergence Security Journal
• /
• v.24 no.1
• /
• pp.35-42
• /
• 2024

Multi-tenancy architecture plays a crucial role in cloud-based services and applications, and data isolation within such environments has emerged as a significant security challenge. This paper investigates various data isolation methods including schema-based isolation, logical isolation, and physical isolation, and compares their respective advantages and disadvantages. It evaluates the practical application and effectiveness of these data isolation methods, proposing security considerations and selection criteria for data isolation in the development of multi-tenant websites. This paper offers important guidance for developers, architects, and system administrators aiming to enhance data security in multi-tenancy environments. It suggests a foundational framework for the design and implementation of efficient and secure multi-tenant websites. Additionally, it provides insights into how the choice of data isolation methods impacts system performance, scalability, maintenance ease, and overall security, exploring ways to improve the security and stability of multi-tenant systems.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.30 no.6
• /
• pp.1031-1041
• /
• 2020

Cloud computing technology plays an important role in the deep learning industry as deep learning services are deployed frequently on top of cloud infrastructures. In such cloud environment, virtualization technology provides logically independent and isolated computing space for each tenant. However, recent studies demonstrate that by leveraging vulnerabilities of virtualization techniques and shared processor architectures in the cloud system, various side-channels can be established between cloud tenants. In this paper, we propose a novel attack scenario that can steal internal information of deep learning models by exploiting the Meltdown vulnerability in a multi-tenant system environment. On the basis of our experiment, the proposed attack method could extract internal information of a TensorFlow deep-learning service with 92.875% accuracy and 1.325kB/s extraction speed.

• KSII Transactions on Internet and Information Systems (TIIS)
• /
• v.15 no.1
• /
• pp.58-73
• /
• 2021

Cloud Service Providers (CSPs) enable their users to access Cloud computing and storage services from anywhere in quick and flexible manners through the Internet. With the basis of 'pay-as-you-go' model, it makes the interactions between CSPs and the users play a vital role in shaping the Cloud computing market. A pool of virtualized and dynamically scalable Cloud services that delivered on demand to the users is associated with guaranteed performance and cost-provisioning. It needed a costing scheme for determining suitable charges in order to secure lease pricing of the Cloud services. However, it is hard to meet the satisfied prices for both CSPs and users due to their conflicting needs. Furthermore, there is lack of Service Level Agreements (SLAs) that allowing the users to take part into price negotiating process. The users may lose their interest to use Cloud services while reducing CSPs profit. Therefore, this paper proposes a generic costing scheme for Cloud services using General Equilibrium Theory (GET). GET helps to formulate the price function for various services' factors to match with various demands from the users. It is initially determined by identifying the market circumstances that a general equilibrium will be hold and reached. Specifically, there are two procedures of agreement made in response to (i) established equilibrium supply and demand, and (ii) service price formed and constructed in a price range. The SLAs in our costing scheme is integrated to satisfy both CSPs and users' needs while minimizing their conflicts. The price ranging strategy is deliberated to provide prices' options to the users with respect their budget limit. Meanwhile, the CSPs can adaptively charge based on users' preferences without losing their profit. The costing scheme is testable and analyzed in multi-tenant computing environments. The results from our simulation experiments demonstrate that the proposed costing scheme provides better users' satisfaction while fostering fairness pricing in the Cloud market.

• Proceeding of Spring/Autumn Annual Conference of KHA
• /
• 2005.11a
• /
• pp.351-354
• /
• 2005

In 2004. as a part of special housing policy for low income household, Korean government initiated 'Multiple-dwelling Purchase and Public Rental Program'(MDPPRP) to help people whose needs for appropriate housing cannot be met in private housing market. The main goal of this program was to provide the base for self support of tenants by purchasing 'Multiple-housing' in bundle and transferring them into rental housing with low price to the low income tenants. Unlike other public rental housing programs, this model program limited the length of stay in the rental housing by six years to lead tenant's self support. The purpose of this study was to evaluate the effectiveness of this model program for further expanding enforcement. For this, two groups of residents of 'multiple-dwelling purchase and public rental program' and permanent rental housing were compared and analyzed. Thirty two tenants of MDPPRP were interviewed for the study. As research methods, document review, onsite tenant interviews using questionnaire were used. As a whole, most of the tenants were satisfied with their 'multiple-dwelling' environment in physical and socio-psychological aspects.

• Proceedings of the Korea Information Processing Society Conference
• /
• 2015.04a
• /
• pp.319-322
• /
• 2015

사람 몸의 약 70%를 구성하고 있는 물에 대한 현대인의 관심은 줄어만 가고 최근 들어 늘어가는 카페들과 각종 재료를 첨가한 달콤한 음료들이 생활 속에 깊숙이 파고 들고 있다. 아침에 일어나자마자 마시는 것은 물이 아닌 커피, 식사 후 지인들과의 대화에 함께 하는 것 또한 물이 아닌 카페 음료들, 각종 패스트푸드 섭취와 함께 마시는 탄산음료들은 물이 설 자리를 빼앗고 있다. 이러한 생활 습관은 현대인들의 물 섭취량 감소를 촉진하며 건강의 적신호를 보내고 있다. 이 어플리케이션의 목적은 지금의 위험 상황을 자각하지 못하는 현대인들을 위해 다양한 서비스를 통해 자동으로 물 섭취를 권장하고자 한다. 개개인에게 맞춤형 서비스를 제공함으로써 체내의 물 부족 현상에 대한 자각심을 일깨우고 스스로 점검할 수 있게 한다. 멀티 테넌트 환경으로 구현하고자 BaaS 플랫폼을 통해 서버 구축, DB 설계, 서비스 기능 개발 연구를 진행하고 모든 리소스가 공유되어 사용자에게 물 섭취 기록, 기록을 볼 수 있는 타임라인, GPS 를 활용한 주변의 물 위치 정보를 제공한다.

• KIISE Transactions on Computing Practices
• /
• v.21 no.1
• /
• pp.1-12
• /
• 2015

To realize futuristic services with agility, the role of the experimental facility (i.e., testbed) based on integrated resources has become important, so that developers can flexibly utilize the dynamic provisioning power of software-defined networking and cloud computing. Following this trend, an OpenFlow-based SDN testbed environment, denoted as OF@TEIN, connects multiple sites with unique SmartX Racks (i.e., virtualization-enabled converged resources). In this paper, in order to automate the multi-point L2 (i.e., Ethernet) inter-connection of OpenFlow islands, we introduce an automated tool to configure the required Network Virtualization using Generic Routing Encapsulation (NVGRE) tunneling. With the proposed automation tool, the operators can efficiently and quickly manage network inter-connections among multiple OpenFlow sites, while letting developers to control their own traffic flows for service realization experiments.